Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/aSMa0fW5xwGJvYWc7Y8dmRHZOPU.roa
File: aSMa0fW5xwGJvYWc7Y8dmRHZOPU.roa (raw, json)
Hash identifier: 5B73YnbGb0eGnXMStzb3Qxgyk/jVYc6qO2Xwf/yGHjE=
Subject key identifier: 69:23:1A:D1:F5:B9:C7:01:89:BD:85:9C:ED:8F:1D:99:11:D9:38:F5
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 46
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/aSMa0fW5xwGJvYWc7Y8dmRHZOPU.roa
Signing time: Wed 24 Nov 2021 09:51:14 +0000
ROA not before: Wed 24 Nov 2021 09:51:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 36231
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70 (0x46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Nov 24 09:51:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=69231AD1F5B9C70189BD859CED8F1D9911D938F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9e:72:41:8f:9a:6a:69:45:29:1f:49:ef:42:
1b:38:cd:7b:fb:79:a1:20:42:16:0c:cb:90:a1:6a:
25:8c:07:d1:6b:c0:ff:56:3d:a3:7f:8d:65:b8:f9:
23:21:4d:76:5f:6f:84:db:46:8d:1f:0a:1a:26:1a:
bb:bf:5c:f2:17:3f:59:58:17:ec:e3:fe:3c:b9:54:
81:31:21:2f:e0:d7:eb:57:af:da:79:44:e5:08:98:
23:84:6b:14:66:36:a2:1b:0d:77:06:7e:6d:a3:22:
67:df:df:38:54:8e:a5:60:14:b9:cc:d7:4c:25:2b:
64:22:84:67:3a:56:73:7e:9c:f0:e3:fd:ae:da:68:
fa:fb:8f:ff:f4:00:9c:39:5a:db:7f:44:1f:9c:10:
8e:59:46:9a:c3:5c:7e:6e:5c:39:a4:ba:75:6e:4f:
1d:fd:b4:8b:86:c4:bc:a2:aa:eb:e6:74:82:2b:2f:
39:74:33:5a:fd:b3:f5:14:a3:17:40:e0:a2:ec:ad:
ea:9c:cb:1d:3e:66:77:e2:6e:8a:f2:25:9b:1f:52:
88:51:25:e7:38:94:42:8b:d9:0f:ef:31:8b:bd:2e:
cb:82:9b:fa:2b:a5:31:76:86:cf:f0:64:67:64:24:
10:ba:fc:16:ac:9b:fe:98:2f:3f:18:4a:52:77:57:
a4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:23:1A:D1:F5:B9:C7:01:89:BD:85:9C:ED:8F:1D:99:11:D9:38:F5
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/aSMa0fW5xwGJvYWc7Y8dmRHZOPU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
65:6b:19:d7:2b:0a:0b:5d:21:0a:3a:af:d8:e5:73:01:14:ce:
2b:af:88:4d:22:1f:b8:bf:d0:3b:dc:11:04:5e:1c:8b:19:f3:
10:d9:55:99:58:ed:43:ee:e9:4d:89:5f:1b:e2:e9:9a:2a:fd:
b2:e6:1c:4e:f3:7e:2c:3c:22:d1:ba:61:fb:37:be:42:39:10:
53:15:df:12:a9:c9:77:e8:5d:d7:3b:5f:c1:90:cb:ab:82:45:
54:f1:21:3b:c0:39:6e:19:d0:42:c5:41:5d:c3:7b:29:b0:6d:
1e:2d:bc:2e:b1:3f:b1:73:0f:53:b8:08:cb:01:8d:ee:ba:13:
10:b2:70:85:8e:20:ae:65:26:fa:4a:1f:5c:9e:81:93:f4:98:
76:07:24:7d:5b:fe:c2:f9:01:75:32:a9:4a:db:2a:85:71:f5:
82:24:37:a3:46:a8:a6:d7:32:77:e1:84:f9:18:40:f1:8a:0a:
98:5a:6b:6b:21:00:71:e6:e3:f0:c6:0f:a2:b4:b4:d8:a8:43:
33:49:ee:0e:a1:8a:8a:08:88:16:93:23:bf:53:f1:51:3f:1f:
b6:a3:a1:14:7a:ab:4f:cc:5e:36:35:ee:bf:c5:22:a6:60:b9:
6c:4d:b7:53:58:f5:f5:10:a3:e4:b9:4c:47:27:1b:f4:09:00:
86:9b:ac:02
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMkEw
OUNFNDI4MDlGNERBOUQ3QjFDNDQ3M0RERjJGNDM2QTU5OUM0MB4XDTIxMTEyNDA5
NTExNFoXDTIyMDkyOTAyMzYyMlowMzExMC8GA1UEAxMoNjkyMzFBRDFGNUI5Qzcw
MTg5QkQ4NTlDRUQ4RjFEOTkxMUQ5MzhGNTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANKeckGPmmppRSkfSe9CGzjNe/t5oSBCFgzLkKFqJYwH0WvA/1Y9
o3+NZbj5IyFNdl9vhNtGjR8KGiYau79c8hc/WVgX7OP+PLlUgTEhL+DX61ev2nlE
5QiYI4RrFGY2ohsNdwZ+baMiZ9/fOFSOpWAUuczXTCUrZCKEZzpWc36c8OP9rtpo
+vuP//QAnDla239EH5wQjllGmsNcfm5cOaS6dW5PHf20i4bEvKKq6+Z0gisvOXQz
Wv2z9RSjF0Dgouyt6pzLHT5md+JuivIlmx9SiFEl5ziUQovZD+8xi70uy4Kb+iul
MXaGz/BkZ2QkELr8Fqyb/pgvPxhKUndXpEECAwEAAaOCAfIwggHuMB0GA1UdDgQW
BBRpIxrR9bnHAYm9hZztjx2ZEdk49TAfBgNVHSMEGDAWgBTSoJzkKAn02p17HERz
3fL0NqWZxDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR
oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRVJDWUNB
VC8wcUNjNUNnSjlOcWRleHhFYzkzeTlEYWxtY1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBLzBxQ2M1Q2dKOU5xZGV4eEVjOTN5OURhbG1jUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01FUkNZQ0FUL2FTTWEwZlc1eHdHSnZZ
V2M3WThkbVJIWk9QVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p
Yy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAFnrH4wDQYJKoZIhvcNAQELBQADggEBAGVrGdcrCgtdIQo6r9jlcwEUziuviE0i
H7i/0DvcEQReHIsZ8xDZVZlY7UPu6U2JXxvi6Zoq/bLmHE7zfiw8ItG6Yfs3vkI5
EFMV3xKpyXfoXdc7X8GQy6uCRVTxITvAOW4Z0ELFQV3DeymwbR4tvC6xP7FzD1O4
CMsBje66ExCycIWOIK5lJvpKH1yegZP0mHYHJH1b/sL5AXUyqUrbKoVx9YIkN6NG
qKbXMnfhhPkYQPGKCphaa2shAHHm4/DGD6K0tNioQzNJ7g6hiooIiBaTI79T8VE/
H7ajoRR6q0/MXjY17r/FIqZguWxNt1NY9fUQo+S5TEcnG/QJAIabrAI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org